Tuesday, 23 August 2011

GNU Hackers Meeting 2011 in Paris

In case you are in the Paris area and don't know already, there is a a GNU Hackers Meeting event being held from Thursday 25th to Sunday 28th August, 2011 at IRILL If you are a GNU user, enthusiast, or contributor of any kind, feel free to come. I guess you can still drop an email to ghm-registration@gnu.org.

For folks around on Wednesday (yeah, that's tomorrow), we are having a dinner around 8 PM at the Mussuwam, a Senegalese restaurant in Paris, near Place d'Italie. When you get there, just give them the secret password (which is 'GNU') and they'll show you were the rest of the crowd sits. Be sure to keep that password secret though. No one else should be in the know.

Happy hacking and I hope to see you guys there.

Sunday, 21 August 2011

How to install a digital CA certificate on Red Hat based GNU/Linux distributions

This is just as a reminder for myself, as I keep forgetting about this stuff.

If like me you run a server with services that depends on SSL and need to install a certificate issued by a Certificate Authority (CA) like CACert, this might be interesting to you as well.

On Red Hat based systems the CA certificate for SSL is usually installed in the /etc/pki/tls/certs directory. The certificate is basically just dropped there in a file which name is its hash – built with the openssl program.

I wrote the shell scriptlet http://dodji.seketeli.net/install-ca-cert.txt. Download it, save it as install-ca-cert.sh and turn it into an executable.

Then, assuming your certificate is in a file named your-ca.crt, install it by doing:

sudo ./install-ca-cert.sh ./your-ca.crt

Voila. I don't know how that works on other distributions, though.


A wise person taught me about the c_rehash utility from openssl, that does the same thing as my dirty script above. To use it, you need to install the openssl-perl package. Thank you, Daniël.